]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: f8ceec5) | patch
connman: Fix for CVE-2017-12865
authorSona Sarmadi <sona.sarmadi@enea.com>
Wed, 30 Aug 2017 10:10:27 +0000 (12:10 +0200)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 30 Aug 2017 10:12:22 +0000 (11:12 +0100)
commitcf1099babe7291d6f3f4d30eb503e1736437cfe0
tree666006faf313cedf598ec16f3d60a464ca53b6b9tree | snapshot
parentf8ceec50af68650d6548738e5b5582e2b25424d7commit | diff
connman: Fix for CVE-2017-12865

dnsproxy: Fix crash on malformed DNS response
If the response query string is malformed, we might access memory
pass the end of "name" variable in parse_response().

[YOCTO #11959]

(From OE-Core rev: fb3e30e45eea2042fdb0b667cbc2c79ae3f5a1a9)

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Conflicts:
meta/recipes-connectivity/connman/connman_1.33.bb
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-connectivity/connman/connman/CVE-2017-12865.patch [new file with mode: 0644] blob
meta/recipes-connectivity/connman/connman_1.33.bb diff | blob | history
Mirror of the official openembedded-core repository